Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cpMrYUNtHHspuT2P3avPljhRhJs.roa
File: cpMrYUNtHHspuT2P3avPljhRhJs.roa (raw, json)
Hash identifier: QD0ccS5doC91crgFNn2lOXrV61Y9w8WwNpXPX0MqWcI=
Subject key identifier: 72:93:2B:61:43:6D:1C:7B:29:B9:3D:8F:DD:AB:CF:96:38:51:84:9B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0189DAA4C7BA13E0668AA2D3819BA05C36FA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cpMrYUNtHHspuT2P3avPljhRhJs.roa
Signing time: Wed 09 Aug 2023 14:12:59 +0000
ROA not before: Wed 09 Aug 2023 14:12:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:a4:c7:ba:13:e0:66:8a:a2:d3:81:9b:a0:5c:36:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 9 14:12:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72932b61436d1c7b29b93d8fddabcf963851849b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:bb:51:9f:7e:aa:b4:b6:53:a0:7e:95:5b:9d:
07:1a:40:6d:de:a5:c9:b8:cc:d7:be:28:a7:75:85:
6a:86:2c:29:29:d9:b8:55:a4:f3:5b:e3:e1:d6:57:
cc:ec:14:ed:e8:77:e4:00:07:1c:3f:a4:63:c7:72:
89:0a:33:e0:1b:5e:ce:a2:77:e5:12:ad:cd:ea:0c:
4e:3d:00:d1:4d:b1:8c:6d:72:ea:ac:40:40:a6:dc:
94:d0:4a:c3:6f:0d:0a:99:ca:4f:2a:44:74:48:96:
20:42:79:24:00:be:2a:d7:65:ce:c9:0c:47:5b:6f:
71:90:67:0c:b9:6b:83:c7:c9:6b:cb:c8:36:46:bf:
f9:bc:27:9b:52:fb:18:d5:bd:43:10:bc:bd:47:ff:
82:e1:b2:9f:f8:e0:f9:b4:9a:64:3c:e7:69:6f:ca:
ee:a0:24:f5:b7:51:63:a9:c0:a3:3a:f2:5b:ab:37:
e6:cb:eb:b1:6e:d0:56:7f:66:33:3f:fa:89:77:b7:
07:af:d2:6e:b9:5b:16:61:ba:4c:e2:8e:72:2b:d0:
a2:73:13:75:75:b2:f7:bb:31:9f:c4:3f:64:d6:64:
a9:24:7e:b9:db:56:ab:f5:ef:fd:bc:80:a3:f3:bf:
db:fd:27:60:5c:a8:f7:89:5b:7c:5e:f5:3c:42:76:
ed:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:93:2B:61:43:6D:1C:7B:29:B9:3D:8F:DD:AB:CF:96:38:51:84:9B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cpMrYUNtHHspuT2P3avPljhRhJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
68:52:8a:86:13:2d:db:2d:0a:d7:ae:47:99:fb:66:84:8e:57:
4d:46:5c:7e:93:d4:ad:bd:ca:b1:83:35:19:8e:f0:d4:41:77:
21:8d:70:01:db:0e:d5:19:22:b3:58:bd:01:1e:c8:24:aa:ed:
bc:a8:5d:86:85:08:f9:21:95:72:c7:1b:59:8a:8e:d0:d5:71:
fc:50:69:2d:b7:b1:09:62:23:f6:a4:ca:db:24:5f:9b:7d:1b:
18:47:31:84:f1:a5:a2:73:79:6c:c6:91:5c:07:d9:a9:c3:f7:
bd:f6:5a:9c:48:08:63:60:c1:9f:36:80:a8:ec:ba:7f:d5:9b:
68:93:fd:7c:5a:68:da:62:c4:6d:39:c6:50:96:6e:d7:5e:d8:
67:ad:a7:63:40:a3:04:2d:b0:bc:40:d6:b7:c1:40:3f:9d:bc:
74:5b:1e:21:46:4c:14:4b:2e:8e:7f:42:66:86:d3:56:b2:83:
b9:3a:1d:fb:1d:be:6b:7f:b1:fc:18:5b:2b:89:89:af:66:e5:
6f:ae:70:e0:fa:e3:7a:4a:d6:8a:66:06:ee:27:b4:1c:45:ce:
c5:c7:0b:68:82:3d:e2:47:a2:15:5b:de:a1:c0:62:44:c4:b0:
6d:17:c9:17:49:1f:c7:b9:59:e6:08:a2:b2:cd:a1:8e:3c:d6:
72:46:5d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 10 10:02:53 2023 by rpki-client on console-fra.rpki-client.org